From owner-freebsd-questions@FreeBSD.ORG  Fri Oct 10 06:57:11 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id C82BF16A4B3
	for <freebsd-questions@FreeBSD.ORG>;
	Fri, 10 Oct 2003 06:57:11 -0700 (PDT)
Received: from jupiter.picknowl.com.au (jupiter.picknowl.com.au
	[203.87.94.38])	by mx1.FreeBSD.org (Postfix) with ESMTP id E8AF843F85
	for <freebsd-questions@FreeBSD.ORG>;
	Fri, 10 Oct 2003 06:57:10 -0700 (PDT)
	(envelope-from imoore@picknowl.com.au)
Received: from popadl-15-193.picknowl.com.au (popadl-15-193.picknowl.com.au
	[210.48.132.193])
	by jupiter.picknowl.com.au (Postfix) with ESMTP id 9DE4996DF5
	for <freebsd-questions@FreeBSD.ORG>;
	Fri, 10 Oct 2003 23:27:08 +0930 (CST)
From: Ian Moore <imoore@picknowl.com.au>
To: "freebsd-questions" <freebsd-questions@FreeBSD.ORG>
Date: Fri, 10 Oct 2003 23:29:08 +0930
User-Agent: KMail/1.5.3
MIME-Version: 1.0
Content-Type: text/plain;
  charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
Message-Id: <200310102329.08549.imoore@picknowl.com.au>
Subject: ADSL modem & ip addresses
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Oct 2003 13:57:11 -0000

Hi,
I'm organising an ADSL connection and I'm a bit confused about our options.

We need to provide web, ssh and mail access to our network for users from home 
across the Internet with an ADSL connection.
I figure the best way to do this is to setup a new machine to act as a 
firewall and run a web server & sendmail on this box. (or I have seen 
something about using socket to divert these services to our existing server 
which has a private address).
The firewall would have a NIC with a private IP address to connect to the rest 
of our network.

What's the best way then to connect it to the ADSL line?
Do we have a second NIC in the firewall machine with a real IP address 
connected to an ADSL modem and use ppp -natd on that interface? Does that 
mean we'd need 2 static IP addresses - one for the firewall & one for the 
modem? (We really don't want to pay for 2 addresses)

Or can we use a USB connection instead - are there FBSD drivers for ADSL 
modems? I can't see any in the supported hardware list.

Or do we use a combined modem/router device to do the nat & firewalling and 
have it redirect mail, web & ssh access to our main server? (is that possible 
or do such devices not allow access into the network from the 'net?)

Cheers,
Ian